Bug 2486148 (CVE-2026-11463) - CVE-2026-11463 cereal: USCiLab Cereal: Type confusion vulnerability in Shared Pointer Handler
Summary: CVE-2026-11463 cereal: USCiLab Cereal: Type confusion vulnerability in Shared...
Keywords:
Status: NEW
Alias: CVE-2026-11463
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
high
high
Target Milestone: ---
Assignee: Product Security DevOps Team
QA Contact:
URL:
Whiteboard:
Depends On: 2490682 2490683
Blocks:
TreeView+ depends on / blocked
 
Reported: 2026-06-07 23:01 UTC by OSIDB Bzimport
Modified: 2026-06-19 07:24 UTC (History)
2 users (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:


Attachments (Terms of Use)

Description OSIDB Bzimport 2026-06-07 23:01:07 UTC
A vulnerability was determined in USCiLab Cereal up to 1.3.2. Affected is an unknown function of the component Shared Pointer Handler. Executing a manipulation can lead to type confusion. The attack can be launched remotely. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure.


Note You need to log in before you can comment on or make changes to this bug.